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Method and apparatus for authenticating a password 



This invention relates to a method of authenticating a password, and apparatus 
and software for password aumentication, for example for authentication of credit card 
transactions or for hardware or website log-in. 

Electronic commerce is predicted to be one of the major reasons for people to 
use the Internet At present, the major obstacle to the expansion of online transaction is the 
security problem with credit cards and passwords being exposed because of the open 
characteristics of TCP/IP. The major causes of credit card problems are theft and illegal 
copying of credit cards. These are directly related to the problems with the current password 
system used by credit cards. 

Many companies have tried to find ways to provide security solutions for 
credit card and online transactions. Often hardware solutions are proposed, but these are 
expensive and still imperfect, as they may be copied and hacked. In addition any data 
flowing on the Internet whether encrypted or not can be caught by someone eke and may be 
reused. Encryption is useful so that people cannot understand the encrypted data, but, 
technologically, any encrypted data may be reused "as is" on the Internet. 

A dynamic password algorithm has been described by Choonyeol Yu in 
Nikkei Electronics Asia, April 2000, as a software solution to be implemented into computer 
systems for credit card security by simply changing the password algorithm Whereas prior 
systems allowed a password entered using the same alphanumeric figures each time the 
described system is dynamic so mat the password changes automatically according to when 
and where the credit card is used. The password is set utilizing the characteristics of 
variables which change according to the points in time and/or points in location, etc Points 
» time include year, month, date, hour, minute, second, even nanosecond, ete; while points 
in location include area code, zip code, host IP address, company name, etc. 

The actual numeric number to be entered on the time and date when 
connecting to abanking server is to be calculated as: "Static password (x+) variables Figure 
1 illustrates the methods for setting the password and its usage. Referring to that figure a 
master password 10 is shown having a first part (or field) 11 and a second part (or field) 12 
By way ofexample, the master password is set at 1234. The parts of the master password 
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2 19.06.2003 
will be linked with variable factors to determine the actual password to be entered at a given 
time. In mis example, the first part 1 1 will be linked with a time factor in hours and the 
second part 12 will be linked with a time factor in months. Thus, for example, when a user 
wishes to enter a password on 5 February at 10 o'clock, the hour factor is 10 and the month 
5 factor is 2 (for February). These factors are added to me respective parts of the password, so 
that the actual password to be entered at that time on that day will be 2236. Similarly, at 
15:00 hours on 5 October, the password to be entered will be 2746. 

The above technology relieves the user of the worry mat the password may be 
caught by someone else beside the user at the bank, or on the Internet by a hacker. It remains 
10 aproblem, however, that security could be at risk if a fraudster or hacker were to gain 
knowledge of me master password as well as the scheme by which subsequent passwords 
generated. Additional security measures would be advantageous. 



are 



It is an object of the present invention to provide additional security 
preventing a password from being reused by a recipient or by an eavesdropper. 



According to a first aspect of the present invention, a method is provided of 
authenticating a password that is presentable in a series of instances and has a first set of 
fields and has a second field. The first set of fields comprises at least one of (a) a static field 
that does not change upon each instance of the password and (b) a dynamic field that changes 
with each instance of the password based upon extrinsic data. The second field (referred to 
herein as a "hysteresis field" or a "dynamic field with history") is arranged to contain data 
mat is a function of a preceding instance of the password (or data in a preceding instance of 
the password), and me method comprises receiving a current presented instance of the 
password, and performing a comparison operation in which the second field of the current 
presented instance of the password is compared using data retained since a prior instance of 
authentication of the password. 

By these means, an instance of a password (or even the password and the 
algorithm for constructing a new password) is valid only for one use, and cannot be reused 
A password can be shared for a single use while preventing the recipient from using it again. 
Knowledge of any schemes and necessary extrinsic data (like place or time) will not be 
sufficient to enable a new instance of the password to be generated. 
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current presented instance of the password is compared using data retained since a prior 
instance of authentication of the password. 



Further aspects and details of die preferred embodiments of the invention are 
now described, by way of example only, with reference to the drawings. 

Figure 1 illustrates a method of prior art dynamic password assignment 

scheme. 

Figure 2 illustrates a method of dynamic password assignment with hysteresis 
in accordance with a first embodiment of the present invention. 

Figure 3 illustrates the structure of a password having dynamic fields with 
history, in accordance with a second embodiment of die invention. 

Figure 4 illustrates the use of the password having dynamic fields with history, 
in accordance with the second embodiment of the invention. 

Figure 5 illustrates a hardware device for receiving a password in accordance 
with the present invention. 

Figure 6 is a flow diagram illustrating the operation of software in a device 
such as that of Figure 5. 



Referring to Figure 2, a master password 100 is shown having five fields, 101 
to 105. Field 101 is dynamic and is a date field. Field 102 is dynamic and is an hour field. 
Fields 103 and 104 are hysteresis fields, the first (field 103) being a previous date field and 
the second (field 104) being a previous hour field. Field 105 is a static field. Beneath master 
password 100, there is illustrated a current password 1 10, which is derived from the master 
password 100 as follows. The example is given where the password 1 10 is generated on 21 
February at 1415 hours. In this instance, the example will use the day figure of the date and 
the hour figure of the time to modify the date field 101 and the hour field 102. In the 
example given, the master password is 1234567890. 

The password 1 10 is generated on 21 February at 1415 hours by adding 21 to 
the value in field 101 to give 33 and by adding 14 to 1he value in field 102 to give 48. The 
'previous date' field 1 13 takes its value from the date field 101 of the master password 100 
(which in this case was the last valid password) and the 'previous hour' field 1 14 takes its 
value from the hour field 102 of the master password 100. The static field 1 15 does not 
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change and takes the value 90 found in static field 105 of password 100. Thus, the new 
password is 3348 123490. 

Moving further down the figure, the third password 120 is generated in a 
surular manner. The date and hour fields 121 and 122 are derived from the date and hour 
5 fields of the master password 101 and 102 using the current date and current hour (i e the 
dateandhourofenteringofthenewpassword). The 'previous date-fields 123 and 'previous 
hour' field 124 are derived from the date field and hour field, respectively, of the previous 
password 110. The method is repeated to generate a fourth password 130, again having 

10 ST fr ° m ^ ^ PaSSWOTd 1 °° "* fi6ldS dedVCd *° m * e P fevious Password 

A major advantage of the arrangement described is that it has a "use once" 
feature, which makes itpossible to share it with other people, without any concern of misuse 
For example, if user A gives the password 1 10 to user B, together with the algorithm for its 
use, user B will be told to enter "date + 12, hour + 34, 123490". Thus, if user B uses the 
15 passwordon21 February at 1415 hours, userB will generate the password 3348123490 and 
have access to the protected account, equipment or domain, however, user B is not aware that 
fields 113, 114andll5,i.e. the digits 123490 are notastatic field. UserB will not be able to 
use the password again, even if he attempts to use it on the same date at the same hour. 

The user has to remember the date and time of the previous use in order to re- 
20 usethepassword. The user has to make a minor modification to the password after each use 
Tins demands some extra mental effort on the part of the user, but the security is significantly 
enhanced. 

As an alternative to using date and time, the place of last use can be entered 
toto one of the fields 101 and!02. Asimplewayof emmiogmis hm*matkm is by cmmting 
25 4. number of letters in the place name in the plac* of last use. If, ftr example, the place of 
last use is Bangalore, this has 9 letters and ttns flgme d be added to the base figure in the 
master password. 

Of course, the scheme can be made more complicated by adding additional 
fields (day, month, hour, place) or can be simplified by using fewer fields. 
'0 Turning to Figure 3, the structure of a password in accordance with an 

alternative embodiment of the invention is illustrated. The password is divided into static 
anddynamicparts. The dynamic parts include dynamic parts with history and dynamic parts 
without history. Thus, there is a field 201 which is static, a series of fields 202 which are 
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dynamic fields with history and a series of fields 203 which are dynamic fields without 
history. 

The dynamic fields with history are updated using the following relations. 

DHoofP,=Fo(P M , E w ) 
DH,ofP i =F 1 (P i . 1 ,E i .,), 
DH n ofP i =F n (P i . 1 ,E i . 1 ). 

Where P is P M are the current and previous passwords, respectively. Eh is Ihe 
event record of previous log-in session such as time/date of log-in. Fo, F u ... F n are simple 
functions, i.e. there are n+1 memory (history) functions for DHo ... DH„, each depending on 
a previous password (P M ) and an event record of a previous log-in session (En). 

The dynamic fields without history are defined using the following relations. 

Di=fi (vi, v 2 , ...) 
I>2 = f2(Vi, v 2 , ...) 
Dm = fm(Vl, V 2 , ...) 

Where v ls v 2 , . . . are variables, which change according to the points in time, 
points in location, etc. 

Use of this second embodiment will be described with reference to Figure 4. 

In Figure 4, a master password is shown, having a first dynamic field with 
history (DHo) 301 (which in this case is a time field), a static field 302, a second dynamic 
field with history (DH,) 303, a third dynamic field with history (DH 2 ) 304, a first dynamic 
field without history (DO 305 and a second dynamic filed without history (Eh) 306. 

When the master password 300 is generated, the dynamic fields with history 
(DHo to DH 2 ) are set at 0, because there is no history. The master password 300 is generated 
on 3 March at 1731 hours at Bangalore and the dynamic fields without history 305 and 306 
are set using this data. In the present example, the algorithm uses Ihe number of letters in the 
monlh and the number of letters in the place as the dynamic data. Thus, field 305 is set at 05 
and field 306 is set at 09. 

On the next occasion of use, password 3 10 needs to be generated. In Ibis 
example, password 310 is to be generated on 7 February at 1823 hours in Mumbai. The 
function F 0 for generating field 3 1 1 requires that the user remembers the exact time of last 
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In the example given in Figure 4, the system records the time of entry of 
password 300, in order to be ready to make a comparison of field 31 1 when password 310 is 
next entered Means can be provided (described in greater detail below) whereby the 
aumenticating system can identify the place of entry of the password and, thus, calculate the 
number of letters in the place of entry, in order to make a comparison of field 316 in 
password 310. 

It is preferred that a comparison or verification is made of all fields entered 
This avoids erroneous data propagating through to other fields and causing later login 
failures. 

Referring now to Figure 5, a system for password entry and authentication is 
shown, comprising a user device 500 and a server 501. The user device has a data entry 
device 510, such as a keypad or a keyboard, it has a processor 51 1, a memory 512, a clock 
513 and a network interface 514 connected to a network port 515. The server 501 has a 
processor 520, memory 521, a clock 522 and a network interface 523 connected to a network 
port 524. The networkports 515 and 514 are connected together through a network (not 
shown). 

In operation, the user of the user device 500 establishes a communication with 
theserverSOl and, in doing so, the server 501 challenges the user for a password Inso- 
challenging the user, the server 501 may convey to the user device 500 a key so that the user 
device 500 may return an encrypted password. The user of the user device 500 constructs the 
password and enters this through entry device 510. The user may be assisted in constructing 
the password by means of data stored in memory 512 and the time and date provided by 
clock 5 1 3 and the extent to which the user is so aided, in constructing the password, depends 
upon whether user device 500 is the only device through which the user enters passwords for 
this system. Upon entry of the password, processor 511 encrypts the password using the key 
provided by the server 501 and delivers the password through interface 514 to the server 501 
where it is received at interface 523, decrypted by processor 520 and compared by processor' 
520 with master password data stored in memory location 521a andprevious password data 
stored in memory location 521b. The previous password data can be the previous password 
or can include the time or date or place of entry of the previous password. Using the master 
password data and the previous password data, the microprocessor 520 constructs the 
expected password and performs a comparison between the decrypted received password and 
the locally-constructed password. If there is a match, an authentication message is sent back 
to user device 500, informing the user that authentication has been successful and providing 
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The devices 500 and 501 can be collapsed into a single device such as a laptop 
computer and the system can be used for password access to that stand-alone device. 

A method of password generation and authentication has been described, 
together with various software algorithms for generating a password, a software program for 
authenticating a password and apparatus and a system for providing password-authenticated 
access to equipment and services. A first described embodiment uses only historic data from 
a previous password, while a second embodiment also uses event log data (e.g. time of last 
login) and current login data (e.g. place of current login). The invention so-described finds 
application in defense installations, where the highest level of security is expected, and where 
intermittent password verifications may be carried out during an activity, in which the 
password is different each time. The invention also finds application in electronic commerce 
transactions, where the feature of continuously-changing passwords has the advantage of 
providing enormously enhanced security. The invention described has the advantage that a 
password may be explicitly shared with another person with the guarantee that the recipient 
will be able to use the password only once. 

A single processor or unit may fulfill the functions of several means recited in 
the claims. A single means recited may be fulfilled by several means in networked fashion. 
Where an element or step is described as comprising one or more elements or steps, the term 
"comprising" does not exclude other elements or steps. The indefinite article "a" or "an" does 
not exclude a plurality. Further modifications of the invention can be made by, and further 
advantages will be apparent to, one of ordinary skill in the art, within the scope of the 
invention. 
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:is a 



1 • A method of authenticating a password that is presentable in a series of 

mstances and has a first set of fields (201, 203) and has a second field (113, 114 202 311 
313, 314), wherein the first set of fields comprises at least one of (a) a static field (105 201 
or 302) that does not change upon each instance of the password and (b) a dynamic field 
(101, 102, 203, 305 or 306) that changes with each instance of the password based upon 
extrinsic data, and wherein the second field is arranged to contain historic data that 
Amotion of apreceding instance of authentication, the method comprising: 

receiving a current presented instance of the password (1 10 or 310); and 
performing a comparison operation (605) in which the second field'(l 13 1 14 
311, 313 or 314) of the current presented instance of the password is compared using data ' 
retained since a prior instance of authentication of the password. 

2- A method according to claim 1, wherein ihe historic data is a function of a 

preceding password. 

3. A method according to claim 1 or 2, wherein the historic data is a function of 

an event record of a preceding instance of authentication. 

4- A method according to claim 1, 2 or 3, wherein the first set of fields comprises 

a static field (201) and a dynamic field (203). 

5. A method according to claim 4, wherein, for the dynamic field, the step of 

performing a comparison operation comprises receiving extrinsic data in the form of date 
and/or time and/or place data and/or internet protocol address of a client machine. 

6- A method according to any one of the preceding claims, further comprising 

upon successful comparison, retaining data for purposes of comparison of a next instance of 
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7. A method according to claim 6, wherein the data retained (602) comprises one 
of the date and the time of receipt of the instance of the current presented instance of the 
password. 

8. A method according to claim 6, wherein 1he data retained (602) is derived 
from the place of receipt of the instance of the current presented instance of the password. 

9. A method according to claim 6, wherein the data retained comprises at least a 
part of the current presented instance of the password. 

10. A method according to any one of the preceding claims, wherein the step of 
comparing comprises: 

generating (604) at least the second field of a generated instance of the 

password; and 

comparing (605) the second field of the current presented instance of the 
password with the second field of the generated instance of the password. 

11. Apparatus for receiving and authenticating a password that is presentable in a 
series of instances and has a first set of fields (201, 203) and has a second field (202), 
wherein the first set of fields comprises at least one of (a) a static field (201 ) that does not 
change upon each instance of the password and (b) a dynamic field (203) that changes with 
each instance of the password based upon extrinsic data, and wherein the second field (202) 
is arranged to contain historic data that is a function of a preceding instance of authentication, 
the apparatus comprising: 

input means (500) for inputting a current presented instance of the password; 

and 

comparison means (501) for performing a comparison operation in which the 
second field of the current presented instance of the password is compared using data 
retained since a prior instance of authentication of the password. 

12. Apparatus according to claim 1 1, wherein the historic data is a function of a 

preceding password. 



PHNL030709EPP 



13 19.06.2003 

13. Apparatus according to claim 1 1 or 12, wherein the historic data is a function 
of an event record of a preceding instance of authentication. 

14. Apparatus according to claim 1 1, wherein the input means and the comparison 
means are remotely located and encryption means are provided for encrypting passwords 



being communicated from the input means to the comparison 



means. 



15. Apparatus according to claim 1 1, wherein the comparison means has a 
memory (521) for relaining data upon successful comparison, for purposes of comparison of 
a next instance of the password. 

16. A data carrier having stored thereon instructions and data which, when loaded 
into the memory (521) of a suitable computer (501), and when presented with a current 
presented instance of a password that is presentable in a series of instances and has a first set 
of fields (201, 203) and has a second field (202), wherein the first set of fields comprises at 
least one of (a) a static field (201) that does not change upon each instance of the password 
and (b) a dynamic field (203) that changes with each instance of the password based upon 
extrinsic data, and wherein the second field (202) is arranged to contain data that is a function 
of a preceding instance of authentication, cause the computer to: 

perform a comparison operation (605) in which the second field of the current 
presented instance of the password is compared using data retained since a prior instance of 
authentication of the password. 
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ABSTRACT: 



A password formed of several fields (101-105) is presentable in a series of 
instances (100, 1 10, 120, 130). The fields include at least one of (a) a static field (105) that 
does not change upon each instance of the password and (b) a dynamic field (101, 102) that 
changes with each instance of the password based upon extrinsic date. Further, there is a 
"hysteresis" field (or a "dynamic field with history", 103, 104) which contains data that is a 
function of a preceding instance of the password. When a current presented instance (1 10) of 
the password is input/received, a comparison operation is performed in which the hysteresis 
field (1 13, 1 14) of the current presented instance of the password is compared using date 
retained since a prior instance of authentication of the password (101, 102). 



Figure 2 



1/6 




FIG. 1 

(PRIOR ART) 



PHNL030709 



3/6 



Password 



Password= 



Static 



~7~ 
201 



Dynamic 



With history 



DH Q ...DH n 



r 

202 



Without history 



i m 



FIG. 3 



"T 

203 



PHNL030709 



4/6 




PHNL030709 



5/6 



510 




512 



521a 



521 



521 



501 



520 



FIG. 5 



513 



514 



4^515 




PHNL030709 



6/6 




Ready 
to receive 
log-in 



601 



603* 



I 




User enters 
log-in 



Recall master 
and previous 
password and 
event log 



604— 



Construct new 
password using 
time / place data 



605- 



Compare 
password 
entered with 
password 
constructed 




600 



* 



602 

Record time 
and / or place 



607 



Record new 
password 



FIG. 6 



606 



608* 



Grant 
access 



PCT/IB2004/050907 



This Page is Inserted by IFW Indexing and Scanning 
Operations and is not part of the Official Record 



Defective images within this document are accurate representations of the original 
documents submitted by the applicant. 



Defects in the images include but are not limited to the items checked: 



LJ BLURRED OR ILLEGIBLE TEXT OR DRAWING 

□ SKEWED/SLANTED IMAGES 

□ COLOR OR BLACK AND WHITE PHOTOGRAPHS 
Q^GRAY SCALE DOCUMENTS 

□ LINES OR MARKS ON ORIGINAL DOCUMENT 

□ REFERENCE(S) OR EXHD3IT(S) SUBMITTED ARE POOR QUALITY 

□ OTHER: 

IMAGES ARE BEST AVAILABLE COPY. 
As rescanning these documents will not correct the image 
problems checked, please do not report these problems to 
the IFW Image Problem Mailbox. 



BEST AVAILABLE IMAGES 




BLACK BORDERS 



□ IMAGE CUT OFF AT TOP, BOTTOM OR SIDES 



□ FADED TEXT OR DRAWING 




